Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4o9tIbSkLHNHieF44EW7NSR5f88.roa
File: 4o9tIbSkLHNHieF44EW7NSR5f88.roa (raw, json)
Hash identifier: E4kalhgQY9+uYUKLYnou1o/7A4pI6gPN8FUBg61q8fE=
Subject key identifier: E2:8F:6D:21:B4:A4:2C:73:47:89:E1:78:E0:45:BB:35:24:79:7F:CF
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018E386D395847C90359B986BCD817786F72
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4o9tIbSkLHNHieF44EW7NSR5f88.roa
Signing time: Wed 13 Mar 2024 15:27:45 +0000
ROA not before: Wed 13 Mar 2024 15:27:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 2.56.112.0/24 maxlen: 24
2.56.113.0/24 maxlen: 24
5.183.128.0/24 maxlen: 24
31.222.248.0/24 maxlen: 24
45.157.136.0/24 maxlen: 24
62.68.83.0/24 maxlen: 24
62.68.86.0/24 maxlen: 24
62.68.87.0/24 maxlen: 24
62.204.36.0/24 maxlen: 24
62.204.57.0/24 maxlen: 24
62.233.35.0/24 maxlen: 24
62.233.49.0/24 maxlen: 24
62.233.56.0/24 maxlen: 24
62.233.60.0/24 maxlen: 24
80.68.145.0/24 maxlen: 24
80.68.158.0/24 maxlen: 24
80.91.209.0/24 maxlen: 24
80.91.210.0/24 maxlen: 24
91.213.117.0/24 maxlen: 24
91.226.247.0/24 maxlen: 24
91.242.225.0/24 maxlen: 24
91.242.236.0/24 maxlen: 24
91.242.238.0/24 maxlen: 24
94.143.226.0/24 maxlen: 24
94.158.191.0/24 maxlen: 24
130.193.79.0/24 maxlen: 24
130.255.169.0/24 maxlen: 24
146.19.137.0/24 maxlen: 24
146.19.148.0/24 maxlen: 24
146.19.150.0/24 maxlen: 24
146.19.152.0/24 maxlen: 24
146.19.185.0/24 maxlen: 24
146.19.187.0/24 maxlen: 24
146.19.190.0/24 maxlen: 24
146.19.194.0/24 maxlen: 24
176.56.38.0/24 maxlen: 24
178.211.140.0/24 maxlen: 24
185.122.206.0/24 maxlen: 24
185.140.172.0/24 maxlen: 24
185.155.101.0/24 maxlen: 24
185.198.153.0/24 maxlen: 24
185.218.1.0/24 maxlen: 24
185.232.47.0/24 maxlen: 24
193.3.22.0/24 maxlen: 24
193.141.53.0/24 maxlen: 24
193.239.209.0/24 maxlen: 24
194.26.216.0/24 maxlen: 24
194.26.221.0/24 maxlen: 24
194.32.243.0/24 maxlen: 24
195.64.106.0/24 maxlen: 24
195.64.109.0/24 maxlen: 24
195.64.110.0/24 maxlen: 24
195.64.112.0/24 maxlen: 24
195.64.114.0/24 maxlen: 24
195.64.117.0/24 maxlen: 24
195.93.249.0/24 maxlen: 24
195.96.136.0/24 maxlen: 24
195.96.146.0/24 maxlen: 24
195.96.155.0/24 maxlen: 24
195.96.157.0/24 maxlen: 24
212.18.96.0/24 maxlen: 24
212.18.103.0/24 maxlen: 24
212.52.5.0/24 maxlen: 24
217.114.32.0/24 maxlen: 24
217.119.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 May 2024 17:10:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:6d:39:58:47:c9:03:59:b9:86:bc:d8:17:78:6f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Mar 13 15:27:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e28f6d21b4a42c734789e178e045bb3524797fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7c:2b:fd:c1:99:ea:33:e3:5e:b3:15:c1:71:
94:b9:d4:ae:c6:02:99:40:a7:07:63:55:37:f1:53:
59:02:3b:fd:f2:cd:18:2d:2e:b6:85:0e:0d:2d:ca:
27:06:d9:7b:49:ac:ab:ed:ab:4d:55:93:62:38:9d:
1f:5f:4d:12:31:d7:f2:52:a2:cf:91:fc:0a:6a:eb:
d4:e6:e7:70:b1:57:47:bf:6f:26:b1:36:5c:bd:86:
3b:ae:0b:cd:a3:c7:04:74:33:73:be:a4:95:4b:6b:
7e:81:49:96:46:3a:bd:d7:9c:13:e8:e2:98:36:26:
f8:4d:c9:64:3a:57:fa:d3:dd:7c:3d:58:de:be:6c:
79:1c:49:bc:cc:8a:40:f1:3f:bf:7d:e4:85:7a:e4:
e3:d1:48:db:47:f5:e6:96:0d:9e:e5:d6:78:ed:ac:
64:2e:6b:df:5b:fe:a7:ea:74:40:34:bf:e8:6f:a0:
c7:6f:ff:cd:0e:35:6c:c7:e1:82:a5:6b:90:a1:6b:
2b:e7:69:eb:43:f5:57:e9:50:49:10:ee:9d:96:55:
97:f6:ea:50:d8:61:0c:37:e8:11:a6:30:b5:a0:2d:
e5:33:61:b5:63:57:6d:67:8a:4b:e9:91:5c:67:1e:
78:18:a0:94:a5:47:92:ab:56:16:11:46:4f:59:18:
f5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8F:6D:21:B4:A4:2C:73:47:89:E1:78:E0:45:BB:35:24:79:7F:CF
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4o9tIbSkLHNHieF44EW7NSR5f88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.112.0/23
5.183.128.0/24
31.222.248.0/24
45.157.136.0/24
62.68.83.0/24
62.68.86.0/23
62.204.36.0/24
62.204.57.0/24
62.233.35.0/24
62.233.49.0/24
62.233.56.0/24
62.233.60.0/24
80.68.145.0/24
80.68.158.0/24
80.91.209.0-80.91.210.255
91.213.117.0/24
91.226.247.0/24
91.242.225.0/24
91.242.236.0/24
91.242.238.0/24
94.143.226.0/24
94.158.191.0/24
130.193.79.0/24
130.255.169.0/24
146.19.137.0/24
146.19.148.0/24
146.19.150.0/24
146.19.152.0/24
146.19.185.0/24
146.19.187.0/24
146.19.190.0/24
146.19.194.0/24
176.56.38.0/24
178.211.140.0/24
185.122.206.0/24
185.140.172.0/24
185.155.101.0/24
185.198.153.0/24
185.218.1.0/24
185.232.47.0/24
193.3.22.0/24
193.141.53.0/24
193.239.209.0/24
194.26.216.0/24
194.26.221.0/24
194.32.243.0/24
195.64.106.0/24
195.64.109.0-195.64.110.255
195.64.112.0/24
195.64.114.0/24
195.64.117.0/24
195.93.249.0/24
195.96.136.0/24
195.96.146.0/24
195.96.155.0/24
195.96.157.0/24
212.18.96.0/24
212.18.103.0/24
212.52.5.0/24
217.114.32.0/24
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
22:28:d8:b2:21:5a:48:26:73:cf:de:b2:58:ac:44:bf:a8:e3:
90:01:f7:f1:da:c3:51:a3:02:08:74:2a:d3:49:5f:4d:18:5f:
c4:12:46:b0:db:86:62:ea:b8:82:10:1d:3d:95:53:82:3d:9c:
71:9e:39:e9:63:c1:f4:0f:d2:27:9b:02:a3:8b:d2:33:6b:48:
2b:4f:86:d9:64:02:1d:90:03:87:5d:c8:b0:ec:7d:2b:00:36:
5a:0a:c1:6b:b7:13:d9:05:13:b6:a2:18:e7:9c:e1:b5:0d:5a:
cd:12:e6:8a:1b:c1:d3:7b:a3:9b:b6:9b:8b:79:fa:8c:1f:f0:
4a:6b:89:1f:44:87:c0:9f:c0:a7:8f:a0:4d:a1:6b:9e:24:e9:
77:43:79:48:99:5b:f4:b8:31:36:01:92:96:e3:71:c6:21:ed:
d0:e4:33:2e:24:55:7d:18:98:79:e7:87:16:43:4a:a5:b6:6c:
3f:6f:2d:6c:76:e2:f3:11:14:bc:3a:4a:4c:e5:ba:76:73:99:
fa:16:88:1f:1e:92:14:7f:14:fc:fa:50:9a:7f:d3:50:0e:f7:
ac:08:31:47:ec:35:6b:f7:16:39:af:7e:df:f5:e1:d7:05:4c:
0b:62:79:33:1c:51:9c:5b:19:b2:94:9d:8d:ce:af:7f:e3:85:
a8:66:ef:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org